Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-5520 EXPLOITDB python
xrms_crm - SQL Injection via user_id Parameter
SQL injection vulnerability in XRMS CRM, possibly 1.99.2, allows remote attackers to execute arbitrary SQL commands via the user_id parameter to plugins/webform/new-form.php, which is not properly handled by plugins/useradmin/fingeruser.php.
by Benjamin Harris
CVE-2014-1815 EXPLOITDB html
Microsoft Internet Explorer <11 - Code Injection
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as exploited in the wild in May 2014, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0310.
by PhysicalDrive0
CVE-2014-5521 EXPLOITDB python
xrms_crm - Authenticated Remote Code Execution via Username Parameter
plugins/useradmin/fingeruser.php in XRMS CRM, possibly 1.99.2, allows remote authenticated users to execute arbitrary code via shell metacharacters in the username parameter.
by Benjamin Harris
CVE-2014-5465 EXPLOITDB text VERIFIED
Download Shortcode < 0.2.3 - Path Traversal via File Parameter
Directory traversal vulnerability in force-download.php in the Download Shortcode plugin 0.2.3 and earlier for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
by Mehdi Karout & Christian Galeone
CVE-2014-2223 EXPLOITDB python
Plogger < 1.0 - Authenticated Arbitrary File Upload and Remote Code Execution via ZIP Archive
Unrestricted file upload vulnerability in plog-admin/plog-upload.php in Plogger 1.0 RC1 and earlier allows remote authenticated users to execute arbitrary code by uploading a ZIP file that contains a PHP file and a non-zero length PNG file, then accessing the PHP file via a direct request to it in plog-content/uploads/archive/.
by b0z
CVE-2014-5519 EXPLOITDB python
PhpWiki 1.5.0 - Remote Code Execution via Ploticus Module Device Option
The Ploticus module in PhpWiki 1.5.0 allows remote attackers to execute arbitrary code via shell metacharacters in a device option in the edit[content] parameter to index.php/HeIp. NOTE: some of these details are obtained from third party information.
by Benjamin Harris
EIP-2026-104927 EXPLOITDB python
ActualAnalyzer Lite 2.81 - Command Execution
by Benjamin Harris
CVE-2014-5377 EXPLOITDB text
ManageEngine DeviceExpert < 5.9 - Unauthenticated Exposure of Sensitive Information via ReadUsersFromMasterServlet
ReadUsersFromMasterServlet in ManageEngine DeviceExpert before 5.9 build 5981 allows remote attackers to obtain user account credentials via a direct request.
by Pedro Ribeiro
CVE-2014-1511 EXPLOITDB CRITICAL ruby VERIFIED
Mozilla Firefox < 28.0 - Popup Blocker Bypass
Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allow remote attackers to bypass the popup blocker via unspecified vectors.
by Metasploit
CVSS 9.8
EIP-2026-114192 EXPLOITDB text
WordPress Plugin WooCommerce Store Exporter 1.7.5 - Multiple Cross-Site Scripting Vulnerabilities
by Mike Manzotti
CVE-2014-5119 EXPLOITDB c VERIFIED
glibc < 2.20 - Denial of Service and Remote Code Execution via CHARSET Environment Variable
Off-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka glibc) allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via vectors related to the CHARSET environment variable and gconv transliteration modules.
by taviso & scarybeasts
EIP-2026-108872 EXPLOITDB text VERIFIED
Joomla! Component spidervideoplayer - 'theme' SQL Injection
by Claudio Viviani
CVE-2014-5464 EXPLOITDB text
ntopng < 1.2.1 - Cross-Site Scripting via HTTP Host Header
Cross-site scripting (XSS) vulnerability in the nDPI traffic classification library in ntopng (aka ntop) before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header.
by Steffen Bauch
CVE-2014-5381 EXPLOITDB CRITICAL perl VERIFIED
Grand MA 300 Firmware - Insufficiently Protected Credentials via Weak PIN Verification
Grand MA 300 allows a brute-force attack on the PIN.
by Eric Sesterhenn
CVSS 9.8
CVE-2014-5380 EXPLOITDB HIGH perl VERIFIED
Grand MA 300 Firmware - Cleartext Transmission of Sensitive PIN Data
Grand MA 300 allows retrieval of the access PIN from sniffed data.
by Eric Sesterhenn
CVSS 7.5
CVE-2014-2081 EXPLOITDB text VERIFIED
Innovative vtls-Virtua <2014.1.1 - SQL Injection
Multiple SQL injection vulnerabilities in the login in web_reports/cgi-bin/InfoStation.cgi in Innovative vtls-Virtua before 2013.2.4 and 2014.x before 2014.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter.
by José Tozo
EIP-2026-110765 EXPLOITDB text VERIFIED
PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities
by Ragha Deepthi K R
CVE-2014-3996 EXPLOITDB ruby VERIFIED
ManageEngine <9-0.90043 - SQL Injection
SQL injection vulnerability in the LinkViewFetchServlet servlet in ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition before 9 build 90043, Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition before 7 build 7003, IT360 and IT360 Managed Service Providers (MSP) edition before 10.3.3 build 10330, and possibly other ManageEngine products, allows remote attackers or remote authenticated users to execute arbitrary SQL commands via the sv parameter to LinkViewFetchServlet.dat.
by Pedro Ribeiro
CVE-2014-5335 EXPLOITDB text
innovaphone PBX < 10.00 - Cross-Site Request Forgery via CMD0/mod_cmd.xml or PBX0/ADMIN/mod_cmd_login.xml
Multiple cross-site request forgery (CSRF) vulnerabilities in innovaphone PBX 10.00 sr11 and earlier allow remote attackers to hijack the authentication of administrators for requests that modify configurations or user accounts, as demonstrated by (1) changing the administrator password via a crafted request to CMD0/mod_cmd.xml or (2) adding a new SIP user via a crafted request to PBX0/ADMIN/mod_cmd_login.xml.
by Rainer Giedat
EIP-2026-113852 EXPLOITDB text VERIFIED
WordPress Plugin KenBurner Slider - 'admin-ajax.php' Arbitrary File Download
by MF0x
EIP-2026-102196 EXPLOITDB text
Air Transfer Iphone 1.3.9 - Multiple Vulnerabilities
by Samandeep Singh
CVE-2004-2566 EXPLOITDB text
LiveWorld LiveChat LiveForum LiveQ&A LiveFocusGroup - Cross-Site Scripting via q Parameter
Multiple cross-site scripting (XSS) vulnerabilities in LiveWorld products, possibly including (1) LiveForum, (2) LiveQ&A, (3) LiveChat, and (4) LiveFocusGroup, allow remote attackers to inject arbitrary web script or HTML via the q parameter in (a) search.jsp, (b) findclub!execute.jspa, and (c) search!execute.jspa.
by GulfTech Security
EIP-2026-109679 EXPLOITDB text VERIFIED
MyAwards MyBB Module - Cross-Site Request Forgery
by Vagineer
CVE-2014-125116 EXPLOITDB CRITICAL ruby VERIFIED
HybridAuth 2.0.9-2.2.2 - Unauthenticated Remote Code Execution via install.php Config Injection
A remote code execution vulnerability exists in HybridAuth versions 2.0.9 through 2.2.2 due to insecure use of the install.php installation script. The script remains accessible after deployment and fails to sanitize input before writing to the application’s config.php file. An unauthenticated attacker can inject arbitrary PHP code into config.php, which is later executed when the file is loaded. This allows attackers to achieve remote code execution on the server. Exploitation of this issue will overwrite the existing configuration, rendering the application non-functional.
by Metasploit
EIP-2026-109697 EXPLOITDB text VERIFIED
MyBB 1.8 Beta 3 - Multiple Vulnerabilities
by DemoLisH B3yaZ